使用SHA1通过MD5,SHA1和MD5哈希密码

时间:2016-03-01 10:35:31

标签: encryption hash md5 sha1

这些哈希密码中的哪一种方法最安全,最难找到哈希冲突?

  1. 仅限MD5
  2. 仅限SHA1
  3. MD5 over SHA1

1 个答案:

答案 0 :(得分:1)

这些都不应该用于密码散列,它们已被证明是不安全的:

来自维基百科的MD5: The security of the MD5 has been severely compromised, with its weaknesses having been exploited in the field, most infamously by the Flame malware in 2012. The CMU Software Engineering Institute considers MD5 essentially "cryptographically broken and unsuitable for further use".

来自维基百科的SHA1:

SHA-1 is no longer considered secure against well-funded opponents. In 2005, cryptanalysts found attacks on SHA-1 suggesting that the algorithm might not be secure enough for ongoing use,[3] and since 2010 many organizations have recommended its replacement by SHA-2 or SHA-3.[4][5][6] Microsoft,[7] Google[8] and Mozilla[9][10][11] have all announced that their respective browsers will stop accepting SHA-1 SSL certificates by 2017.

存在更安全的散列算法,例如应考虑的SHA-2或3。